Date: Thu, 8 May 2003 00:03:50 -0700 From: "Derrick Ryalls" <ryallsd@datasphereweb.com> To: "'Daniela'" <dgw@liwest.at>, <questions@freebsd.org> Subject: RE: Why is port 22 open by default? Message-ID: <001601c3152f$fa693170$0200a8c0@bartxp> In-Reply-To: <200305072233.30197.dgw@liwest.at>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Wednesday 07 May 2003 20:03, Brad Lisoweski wrote: > > Would you rather have telnet open? > > > > IMHO, SSH is secure, and is fine to be open by default. If you are=20 > > paranoid, compile ipfilter or ipfw into your kernel and=20 > block access=20 > > to port 22. >=20 > Thanks for your reply. >=20 > I run a shell server, so I need SSH.=20 > I'm still relatively new to all this, so I figured if it is=20 > open by default,=20 > it must be secure. > Before I thought that easily exploitable holes are regularly=20 > discovered in=20 > SSH. >=20 I too am a security freak, so I limit what ips can ssh to my machines. Read the man pages for your firewall, or do it the really simple way and use /etc/hosts.allow: sshd : 192.168.1. : allow sshd : trusted.com : allow sshd : all : deny
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001601c3152f$fa693170$0200a8c0>